Security Firewall Network - CNET Content Solutionscdn.cnetcontent.com/7c/1f/7c1f35c4-a0d0-4435-a47d... · Your NetDefend Network Security Firewall package should contain all the items

NetworkSecurity FirewallThis Quick Guide will guide you through the installation Process. You are only moments away from using your new D-Link Network Security Product

Building Networks for People

DFL-2500

1.Before You Begin 1.1 Check Your Package Contents....................................................................1

2.Indentifying Components

2.1 Front View................................................................................................2

2.2 LCD Panel.................................................................................................3

2.3 LED Indicators...........................................................................................5

2.4 Default interface attribute definition..........................................................5

3.Connecting the DFL-2500

3.1 Setting up Firewall to your Network........................................................6

4.Configure DFL-2500

4.1 Configure your Computer’s IP..................................................................7

4.2 Using the Setup Wizard.............................................................................8

5.Appendix

5.1 How to Configure Static IP Manually on Microsoft Windows XP..............16

5.2 How to Configure Static IP Manually on Apple MAC OS X...........................17

6.WARRANTY

DFL-2500 Quick Installation Guide

1.1 Check Your Package Contents

Your NetDefend Network Security Firewall package should contain all the items listed below. If any of these items is found damaged or missing in your package, report it to your reseller immediately for replacement.

One (1) DFL-2500 NetDefend™ Network Security Firewall

One (1) Power Cord

One (1) Console Cable (RS-232 cable)

One (1) Ethernet (CAT5 UTP/Straight Through) Cable

One (1) Ethernet (CAT5 UTP/Cross-over) Cable

One (1) CD-ROM (containing QIG/Manual )

Two (2) Rack Mount Brackets

DFL-2500Before You Begin 1

01

DFL-2500

Power Cord

Ethernet Cable (Straight-Through)

Console Cable CD-ROM

Ethernet Cable (Cross-over)

Rack Mount Brackets

The following illustrates the front panel of the DFL-2500 and explains the front panel’s key components:

2.1 Front View

1 2 4 5 6

Identifying Components 2

02

3

1. LCD Panel

2. Power LED

3. System LED

4. Keypad

5. Ethernet ports

6. Console Port

Used to display operation messages and various status of

the DFL-2500. See the following section for details.

Power indication of the DFL-2500.

System status indication of the DFL-2500.

Operation keys used in conjunction with the LCD panel.

Connect to Ethernet cables that connect to broadband

modems and network switches.

Connects to RS-232 console cable that connects to PC.

The console port is hidden behind a protection coverlid that

can be opened by pulling down the lid.

2.2 LCD Panel and KeypadWhen you turn on the power of the DFL-2500, the LCD panel will display the following message: “Press Keypad to enter setup” and press any key on the keypad to enter the startup menu. If after five seconds, you do not press any key on the keypad, the DFL-2500 will automatically start the system.

2.2.1 Startup Menu

If you press any key within five seconds after power-on, the LCD will display two options:1. Start Firewall: If you select this option, the system will start, using the configuration saved inside the device.2. Reset Firewall: If you select this option, the system will start, using the factory default configuration.

Note: If you select “Reset Firewall” and confirm this option, all previous configurations that you saved in this device will be lost forever.

Keypad buttons definition in Startup Menu


03

Not Used

Next Button

Back Button

Confirm Button

2.2.2 Device Status and Information

After the DFL-2500 has completed its system startup, the LCD panel is ready to display the status and information of this device. You can use the keypad to select a desired display option. The following shows status and information that can be displayed on the LCD panel.


Item

Model name:

System Status:

CPU Load:Connections:

Total BPS:Total PPS:

Date:Time:

Uptime:Mem:

IDS Sigs:

WAN1:WAN2:WAN3:WAN4:DMZ:LAN1:LAN2:LAN3:

Core Version:

Description

Display the device model name.

Display system working status.

It will show the CPU utilization and concurrent session

Concurrent traffic statistics per second.Concurrent packets statistics per second.

Device current date.Device current time.

Device boot up time.System memory utilization.

It will display IDS signature information.

Display each interface IP address

Display firewall firmware version.

04

Next Button

Keypad buttons definition in Status Information

Back Button

2.4 Default Interface Attribute Definition

Note: For security reason, default only allow LAN1 interface (192.168.1.1) that can login into firewall GUI from Web browser. You also can modify this configuration after login into firewall GUI. About the detail set up procedure, please refer to the user’s manual.


05

2.3 LED Indicators

Wording onFront plate

Default namein firewall

Default interface type

definition

Default interfaceIP Address

DefaultDHCP Status

1 WAN1 Static IP 192.168.110.254/24 Disable




5 DMZ Static IP 172.17.100.254/24 Disable

6 LAN1 Static IP 192.168.1.1/24 Disable



Status

Solid greenLight off

Solid greenLight offBlinking green

Light off Solid GreenBlinking Green

Light offSolid greenSolid orange

Description

The device is powered on.The device is powered off.

System is operating properly.The device is not working.System is defective, such firmware upgrade fail.

No linkLink presentPort is sending or receiving data.

Port is operating at 10Mbps.Port is operating at 100Mbps.Port is operating at 1000Mbps.

Color

Green

Green

Green

Green/Orange

LED

Power

System

Phone Jack LED light (right)

Phone Jack LED light (left)

3.1 Connecting Firewall to Your Network

A. First, connect the power cord to the receptor at the back panel of the DFL-2500 and then plug the other end of the power cord to a wall outlet or power strip. Then powered on the DFL-2500 using the on/off switch. Now the Power LED will turn ON to indicate proper operation.

B. 1. Powered off your Cable or DSL modem; some devices may not have a on/off switch and will require you to unplug the power adapter. Now, the DFL-2500 should be powered on and the Cable / DSL modem should be turned off. 2. Cable / DSL modem (Powered Off) - DFL-2500 (Powered On) Connect an Ethernet cable to the Ethernet jack located on the Cable / DSL modem. After the Ethernet cable is securely connected, powered on the Cable / DSL modem by turning on the unit or plugging in the power adapter. 3. Cable / DSL modem (Powered On) - DFL-2500 (Powered On) Insert the other end of the Ethernet cable to one of the Ethernet ports on the front panel of the DFL-2500. The LED light above the Enternet port will illuminate to indicate proper connection. If the LED light is not illuminated, please go back to step B and repeat its instructions.

C. Insert an Ethernet cable to the LAN1 port on the front panel of the DFL-2500 and connect it to a port on your network hub or switch. The LED light above the Ethernet port on the DFL-2500 will illuminate to indicate proper connection

D. Connecting the computer that you will use to configure the DFL-2500 to the network hub or switch.

Connecting the DFL-2500 3

06

4.1 Configure your Computer’s IP AddressMake sure that the network adapter in your computer is configured to use a static IP address with 192.168.1.1 as default gateway and 255.255.255.0 as netmask. Instructions on how to configure the network adapter can be found in the appendix.

When you have completed the steps in this Quick Installation Guide, your connected network should look similar to this:

Configure DFL-2500 4

07

Cable/DSL Modem

DFL-2500

Switch

InternalNetworkDMZ

Network(optional)

Computer1 Computer2

4.2 Using the Setup WizardThe DFL-2500 provides Web based confi guration. You can confi gure your DFL-2500 through Internet Explorer 6 or Firefox 1.0 browser in MS Windows, Macintosh or UNIX based platforms. Activate your browser. Then type the IP address of the DFL-2500 into the Location (for Netscape) or Address (for IE) fi eld and press “Enter.” For example: http://192.168.1.1.

(The IP Address shown in the example above is the default setting. If you have changed the IP Address of the DFL-2500 to conform to a network, then input that IP Address in the web browser, instead of the default IP Address shown.)

Log on to the DFL-1600 web interface.To start using the DFL-2500 web interface you need to log on using the default username and password.


Open your Web browser and type http://192.168.1.1 / into the URL address box. Then press the Enter or Return key.

Type the default Username/PasswordUsername: adminPasword: adminand click Login

08

Step1 - Welcome to the DFL-2500 setup wizard!

Step2 - Set up fi rewall administrator password

First Enter the username that you want to use for the admin account.Enter the password that you want to use for the admin account.


This wizard will guide you through the setup of your DFL-2500

Click Next

09

Click Next

2Step 3 - Set up time and date

Click Set time and date button for setting device

10

Click Next

Select the appropriate dateEnter the appropriate time

Click OK


Step 4 - Set up timezone

Step 5 - Select WAN interface

Select the appropriate timezone.Enter the appropriate dayligt saving time settings.

Select the WAN interface that you want to use.

11

Click Next

Click Next


Step 6 - Confi gure WAN interface

Select the appropriate confi guration for the WAN interface, Click Next and continue to step 7.1 further down.

Note: If you are unsure of which setting to select, please contact your Internet Service Provider.

Step 7.1 - WAN Interface Type is Static IP

If you selected Static IP you have to fi ll out the IP address information provided to you by your ISP. You will need to complete all the required fi elds except for Secondary DNS Server.

12

Click Next


Step 7.2 - WAN Interface Type is PPPoE

Step 7.3 - WAN Interface Type is PPTP

If you selected PPPoE (Point-to-Point Protocol over Ethernet) you will have to fi ll out the user name and password provided to you by your ISP. The PPPoE Service Name fi eld should be left blank unless your ISP informs you otherwise.

Enter Username, Password and the PPTP Server IP address provided by your ISP.DHCP:If your ISProvider is using DHCP you should select the DHCP radio button.Static IP:If your Internet Service Provider is using Static IP you should select the Static IP radio button and enter IP Address, choose a Subnet Mask and enter the Gateway IP address.

13

Click Next

Click Next


Step 7.4 - WAN Interface Type is Big Pond

Step 8 - Set up built-in DHCP server

If you selected Big Pond you will have to fi ll out the user name and password provided to you by your ISP. Click Next and continue to step 8.

If you want to use the built-in DHCP Server in the DFL-800, choose Enable DHCP Server in this screen. You then need to specify a range of IP addresses to hand out to the DHCP clients. This range is entered in the format “Start IP - Stop IP” i.e. 192.168.0.100 - 192.168.0.200. If you don’t want to use the built-in DHCP Server or confi gure it later, choose Disable DHCP Server.

14

Click Next

Click Next


Step 9 - Confi gure helper servers

Step10 - Setup Wizard Complete

NTP ServersIf enabled, specify which NTP Servers that should be used to syncronize the fi rewall time Syslog Servers If enabled, specify where the fi rewall should log, you can specify up to two Syslog recievers

Click Activate to complete your confi guration.

15

Click Next


Appendix 5To connect to the DFL-2500 Network Security Firewall, make sure the network adapter in your computer is confi gured properly. Here is how to confi gure the network adapter manually to the correct IP-address.

Go to Start > right click on My Network Places > select Properties > Right-click on the Network Connection of the Ethernet adapter connecting to the DFL-2500 and select Properties.

Click Internet Protocol (TCP/IP)Click Properties

5.1 How to configure Static IP Manually on Microsoft Windows XP

16

Note:Except for 192.168.1.1, you could set your PC with any IP addresses that same as the 192.168.0.0/ 255.255.255.0 subnet.

Select Use the following IP addressSet IP address to 192.168.1.30,Subnet mask to 255.255.255.0and Default gateway to 192.168.1.1Click OK

Go to the Apple Menu Click on Network and Select System PreferencesClick on Network


5.2 How to Configure Static IP Manually on Apple Mac OS X

17

Set IP Address to 192.168.1.30,Subnet Mask to 255.255.255.0and Router to 192.168.1.1.Click on Apply Now


Select Built-in Ethernet in the show pull down menuSelect Manually in the Confi gure pull down menu

18

WARRANTY 6

19

Warranty

FCC WarningThis equipment has been tested and found to comply with the limits for a Class A digital device, pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment. This equipment generates, uses, and can radiate radio frequency energy and, if not installed and used in accordance with this manual, may cause harmful interference to radio communications. Operation of this equipment in a residential area is likely to cause harmful interference in which case the user will be required to correct the interference at his own expense.

CE Mark WarningThis is a Class A product. In a domestic environment, this product may cause radio interference in which case the user may be required to take adequate measures.

Warnung!Dies ist ein Produkt der Klasse A. Im Wohnbereich kann dieses Produkt Funkstoerungen verursachen. In diesem Fall kann vom Benutzer verlangt werden, angemessene Massnahmen zu ergreifen.

Precaución!Este es un producto de Clase A. En un entorno doméstico, puede causar interferencias de radio, en cuyo case, puede requerirse al usuario para que adopte las medidas adecuadas.

Attention!Ceci est un produit de classe A. Dans un environnement domestique, ce produit pourrait causer des interférences radio, auquel cas l`utilisateur devrait prendre les mesures adéquates.


20

Attenzione!Il presente prodotto appartiene alla classe A. Se utilizzato in ambiente domestico il prodotto può causare interferenze radio, nel cui caso è possibile che l`utente debba assumere provvedimenti adeguati.

VCCI Warning

BSMI Warning警告使用表這是乙類的資訊產品，在居住的環境中使用時，可能會造成射頻干擾，在這種情況下使用者會被要求採取某些適當的對策。

VCCI Warning

Documents

Security Firewall Network - CNET Content Solutionscdn.cnetcontent.com/7c/1f/7c1f35c4-a0d0-4435-a47d... · Your NetDefend Network Security Firewall package should contain all the items